GHSA-hr89-2mg2-9fjm
GitHub Security Advisory
⚠ Unreviewed
MODERATE
Has CVE
Advisory Details
SAP WebIntelligence BILaunchPad, versions 4.10, 4.20, does not sufficiently encode user-controlled inputs in generated HTML reports, resulting in Cross-Site Scripting (XSS) vulnerability.
Related CVEs
Key Information
5.0
/10
Dataset
Last updated: June 27, 2025 6:26 AM
Data from GitHub Advisory Database. This information is provided for research and educational purposes.